http://www.interop.com/lasvegas2003/education/fm_pull.php?s=special
VPN Day 1 Fundamentals, VPN Day 2 Design and Deployment
Networld+Interop Las Vegas, April 28-29, 2003

To learn more about VPNs, join Dave Piscitello, Joel Snyder and Fred Avolio at N+I LV. On Day 1, Fred and Dave provide an overview of VPN technologies, alternatives, applications, use considerations, and selection criteria. On Day 2, Joel and Dave examine the nitty gritty details that make or break an IPsec VPN.

http://education.key3media.com:8080/interop/lv2003/education/FMPro?-DB=K3contacts.fp5&-lay=photo&-format=speaker_detail.html&IDNumber=1035&-Find
Sessions by Dave Piscitello
Networld+Interop Las Vegas, April 28-30, 2003

If you plan to attend N+I next week, drop into these sessions where CoreCom's Dave Piscitello will be speaking:

• Implementing Effective Security, April 27, 11:15am
• The VPN Debate: IPsec vs SSL, April 29, 10:15am
• IPsec: Wrestle with it, fix it, or choose an alternative?, April 30, 2:00pm
• Security Technology Report Card, April 30, 10:00am

WIRELESS SECURITY

http://www.infosecuritymag.com/2003/apr/airsafety.shtml
http://www.infosecuritymag.com/2003/apr/checklist.shtml
http://www.infosecuritymag.com/2003/apr/sniffingair.shtml
Air Safety: WLAN Security
InfoSec Magazine, April 2003

This InfoSec feature article by Lisa Phifer provides an overview of best practices, new technologies and tools that can be used to lock down wireless LANs. Accompanied by a handy WLAN security planning checklist and an annotated linked list of WLAN discovery, monitoring and intrusion detection tools.

http://isp-planet.com/fixed_wireless/equipment/2003/airmagnet2a.html
http://isp-planet.com/fixed_wireless/equipment/2003/airmagnet3a.html
Simplified WLAN Analysis: The AirMagnet Attraction
ISP-Planet, March 13 and 20, 2003

In Part 2 of ISP-Planet's three part lab evaluation, Lisa Phifer illustrates how to perform common WLAN administration tasks with AirMagnet Duo and Handheld. In Part 3, she interviews an AirMagnet customer and speculates about future enhancements.

http://searchnetworking.com/0,294276,sid7_gci892244_tax293386,00.html
Securing teleworker wireless LANs
searchNetworking, April 8, 2003

For years, companies have wrestled with security risks introduced by teleworkers. Today, residential wireless LANs are tossing fresh fuel on this smoldering fire. Wireless LANs make Internet connection, printer and file sharing among PCs in the home much easier. But when one of those nodes is a teleworker desktop or laptop, securing the WLAN becomes a corporate concern. Lisa Phifer offers her recommendations for companies that need to secure teleworkers WLANs.

http://www.scmagazine.com/scmagazine/2003_04/feature_1/index.html
Locking down the airwaves
SC Online Magazine, April 2003

Wireless LANs are a blessing and a curse, but you can greatly reduce the security risks of wireless LANs using tools you already have and techniques you've applied before. This summary of Dave Piscitello's WatchGuard paper discusses how to safely incorporate wireless LANs into trusted networks.

http://searchnetworking.com/tip/1,289483,sid7_gci894640,00.html
Configuring Service Set Identifiers
searchNetworking, April 22, 2003

Every wireless LAN has a service set identifier (SSID) - a unique name that allows stations to connect to the desired network. Despite this apparently simple purpose, SSIDs have been widely misunderstood. In this WLAN Advisor tip, Lisa Phifer takes a look at the purpose of SSIDs, why SSID "hiding" options fail to stop attackers and best practices for selecting good SSID values.

VIRTUAL PRIVATE NETWORKS

http://www.corecom.com/html/bcrmag.html#apr03
Simplifying Secure Remote Access: SSL VPNs
Business Communications Review, April 2003

IPsec is widely used for secure remote access, but SSL VPNs are gaining ground. Dave Piscitello and Lisa Phifer take a look at the business drivers motivating the recent surge in SSL VPN products in the April issue of BCR Magazine.

WIRELESS LAN IMPLEMENTATION

http://searchnetworking.com/0,294276,sid7_gci887463_tax293386,00.html
Understanding Wireless Antennas, Part 2
searchNetworking, March 25, 2003

In Part 2 of this tip. Lisa Phifer provides an overview of after-market omni, patch, yagi and parabolic antennas that can be used to improve both performance and security by focusing signal where it belongs.

http://searchnetworking.com/ateAnswers/0,289620,sid7_tax292553,00.html
searchNetworking Wireless LAN Q&A
March, 2003

As a searchNetworking expert on wireless LANs, Lisa Phifer answers questions posed each week by readers. Questions tackled this month:

• Dual-band devices
  
• Hotspot aggregators
  
• Measuring the bit-rate of wireless connections
  
• Using PPTP or IPsec VPN tunnels for WLAN security/gateway
  
• WLAN security developments
  
• Setting up WLAN for a student hall
  
• PDA VPN Options
  
• Outdoor distance covered by 802.11b vs. 802.11g
  
• Roaming between wireless access ports
  

SECURITY BEST PRACTICES

http://www.corecom.com/external/livesecurity/imsec.htm
Blocking Public Instant Messaging
WatchGuard LiveSecurity Editorial, January 10, 2003

Public instant messaging services, like party lines, are designed for the residential Internet user. In this LiveSecurity column, Dave Piscitello explains why the security implications of permitting public IMs in a business LAN environment should be more worrisome than snoopy Mrs. Malarkey eavesdropping on party line phone conversations.

-----------------------------------------------------------------

Cornerstone is an electronic publication of Core Competence, Inc. If you do not wish to receive future issues, please reply to this message or send email to cornerstone@corecom.com with the word "remove" in the subject line or message body.

For additional information about Core Competence, visit our web site http://www.corecom.com
For past issues, visit our CornerStone page http://www.corecom.com/html/cornerstone.html
Send us a subscribe message to receive future issues of CornerStone.